Debian Patches

Status for c-ares/1.17.1-1+deb11u3

Patch Description Author Forwarded Bugs Origin Last update
disable-cflags-rewrite.diff Prevent autoconf from mangling passed cflags These flags are passed by dpkg-buildflags for hardening. Gregor Jasny <gjasny@googlemail.com> not-needed
ares_expand_name-should-escape-more-characters.patch [1/2] ares_expand_name() should escape more characters
RFC1035 5.1 specifies some reserved characters and escaping sequences
that are allowed to be specified. Expand the list of reserved characters
and also escape non-printable characters using the \DDD format as
specified in the RFC.

Bug Reported By: philipp.jeitner@sit.fraunhofer.de
Fix By: Brad House (@bradh352)		 bradh352 <brad@brad-house.com> no https://github.com/c-ares/c-ares/commit/362f91d807d293791008cdb7616d40f7784ece83 2021-06-11
ares_expand_name-fix-formatting-and-handling-of-root.patch [2/2] ares_expand_name(): fix formatting and handling of root name response

Fixes issue introduced in prior commit with formatting and handling
of parsing a root name response which should not be escaped.

Fix By: Brad House		 bradh352 <brad@brad-house.com> no https://github.com/c-ares/c-ares/commit/44c009b8e62ea1929de68e3f438181bea469ec14 2021-06-11
CVE-2022-4904.diff Add str len check in config_sortlist to avoid stack overflow yes debian upstream https://github.com/c-ares/c-ares/commit/9903253c347f9e0bffd285ae3829aef251cc852d
CVE-2023-31130.patch [PATCH] Merge pull request from GHSA-x6mf-cxr9-8q6v
* Merged latest OpenBSD changes for inet_net_pton_ipv6() into c-ares.
* Always use our own IP conversion functions now, do not delegate to OS
so we can have consistency in testing and fuzzing.
* Removed bogus test cases that never should have passed.
* Add new test case for crash bug found.

Fix By: Brad House (@bradh352)		 Brad House <brad@brad-house.com> no 2023-05-22
CVE-2023-32067.patch [PATCH] Merge pull request from GHSA-9g78-jv2r-p7vc Brad House <brad@brad-house.com> no 2023-05-22

All known versions for source package 'c-ares'

Links